Auto disable VPN with Keycloak OIDC

Hi, Team.
I am using Firezone with Keycloak OIDC client. ‘Auto disable VPN’ feature is enabled in Firezone.
Currently when I delete a user from Keycloak Firezone has not disabled this user and VPN tunnel is still working.
Could you please advise what settings should be configured in Keycloak for ‘Auto disable VPN’ feature to work.
Thank you in advance

Hi Team,
could you please provide comments on on my question.
Thank you

I was able to fix an issue by enabling “Use refresh tokens” in “Advanced” settings for OIDC client configuration in Keycloak.
I also enabled S256 method for “Proof Key for Code Exchange Code Challenge Method” in “Advanced” settings for OIDC client. It helps to solve an issue with the error I got without PKCE setting:

An OpenIDConnect error occurred. Details: {400, "{\"error\":\"invalid_grant\",\"error_description\":\"PKCE code verifier not specified\"}"}

1 Like